Ansible & Friends Newsletter

October 11, 2017 - Issue 68

My New KubeRocker Pro Newsletter

Hobbyists often fail at basic competency when it comes to securing and scaling containers in hostile real-world environments.

KubeRocker Pro keeps you on top of Docker, Kubernetes, and related tools in high scale, high security scenarios.

If you've followed my writing in the past, you know I've been wary of the early container movement due to the many issues with managing and securing containers in a production environment.

Fortunately, things have matured over the last few years and now we have tools like Kubernetes and Anchore that can solve a lot of those orchestration and security issues.

Check out the first issue: KubeRocker Pro, Issue 1

Tools

• ansigenome: A tool to help you gather info on your Ansible roles
  Highlights: Scan your roles to get interesting metrics and dependency graphs

Containers

• Faster Builds with Ansible Container 0.9.2

• How to manage Linux containers with Ansible Container

• Approaches to Configuration Management: Chef, Ansible, and Kubernetes

Discussion

• Is it just me, or does working with Ansible kind of suck?
  TLDR; Other options suck a lot worse & some tips for a smoother experience

Tips & Tricks

• Is there a way to block/rescue my entire playbook?

• Example of Networking Inventory with Ansible

CI/CD

• CI for Ansible playbooks which require Ansible Vault protected variables

• Automated Servers and Deployments with Ansible & Jenkins

Interactive Tutorial

• Interactive Ansible tutorials with dead simple setup via Docker

Cool Slides

• Ansible: How to Get More Sleep and Require Less Coffee

• Build Immutable Servers with Packer & Ansible

New Roles / Playbooks

• Official Ansible Galaxy NGINX Roles Out Now

• Ansible Role - AWS Inspector

• Ansible Playbooks for Rancher Hosts

Adam Miller Joins Ansible Core Dev Team

• New Adventures: Ansible Edition

Ansible Updates

• Ansible 2.4 "Dancing Days"

Docker Security with Anchore

Fun fact: Some of the Ansible co-founders are part of the Anchore founding team :-)

Anchore is a free open-source tool for security scanning Docker images so that critical vulnerabilities don't get introduced into your production systems.

• Anchore Cloud — web app to discover and scan Docker Hub / ECR images for vulnerabilities
• Anchore Open Source Engine — service for security scanning images on-prem with CI/CD integrations

If you provide DevOps services to clients, you should join me for an Anchore webinar next week on October 19th at 1pm EST.

---